This is a weekly report from the CPE (Community Platform Engineering) Team. If you have any questions or feedback, please respond to this report or contact us on -cpe channel on libera.chat (https://libera.chat/).

Week: 20th – 24th June 2022

Highlights of the week

Infrastructure & Release Engineering

Goal of this Initiative

The purpose of this team is to take care of day-to-day business regarding CentOS and Fedora Infrastructure and Fedora release engineering work.
It’s responsible for services running in Fedora and CentOS infrastructure and preparing things for the new Fedora release (mirrors, mass branching, new namespaces etc.).
The ARC (which is a subset of the team) investigates possible initiatives that CPE might take on.
Link to planning board: https://zlopez.fedorapeople.org/I&R-2022-06-22.pdf
Link to docs: https://docs.fedoraproject.org/en-US/infra/

Update

Fedora Infra

  • Most apps have moved over to the OpenShift4 cluster. Hopefully, the transition should be finishing up this week.
  • Wiki: All upgraded in production and working (thanks Ryan!)
  • Resultsdb: All moved over to OpenShift 4 in prod and working (thanks Leo!)
  • Business proceeding as usual

CentOS Infra including CentOS CI

  • Kerberos settings switch for git.centos.org (kcm on el8 vs keyring on el7) for lookaside upload cgi
  • Issue on iad2 hosted reference mirror (epel.next and mirrormanager), all fixed now
  • Duffy CI ongoing tasks and deployments (all announced)
  • Equinix nodes migration (on their request)
  • Business proceeding as usual

Release Engineering

  • Compose-tracker updated to f36 in staging, production happening tomorrow
  • Python 3.11 merged to rawhide
  • MBS randomly fails to process builds
  • Rawhide compose failures recently (syslinux retirement, then python 3.11 merge) all fixed now
  • Business proceeding as usual

CentOS Stream

Goal of this Initiative

This initiative is working on CentOS Stream/Emerging RHEL to make this new distribution a reality. The goal of this initiative is to prepare the ecosystem for the new CentOS Stream.

Updates

  • CentOS Stream 8: Manually keeping regular RPMs and module RPMs updated on the koji.stream server as current updates are composed and released.

CentOS Duffy CI

Goal of this Initiative

Duffy is a system within CentOS CI infrastructure allowing tenants to provision and access machines (physical and/or virtual, of different architectures and configurations) for the purposes of CI testing. Development of Duffy is largely finished, we’re currently planning and testing deployment scenarios.

Updates

  • Release version 3.2.1
  • Docs, docs, docs and a Dojo

Package Automation (Packit Service)

Goal of this initiative

Automate RPM packaging of infra apps/packages

Updates

  • Mostly business as usual
  • Thanks again to all who are reviewing our PRs
  • Most of our GitHub critical apps are enabled now or close to being enabled

Flask-oidc: oauth2client replacement

Goal of this initiative

Flask-oidc is a library used across the Fedora infrastructure and is the client for ipsilon for its authentication. flask-oidc uses oauth2client. This library is now deprecated and no longer maintained. This will need to be replaced with authlib.

Updates:

  • POC working using authlib, tidying up code to prepare to submit a PR back to upstream

EPEL

Goal of this initiative

Extra Packages for Enterprise Linux (or EPEL) is a Fedora Special Interest Group that creates, maintains, and manages a high-quality set of additional packages for Enterprise Linux, including, but not limited to, Red Hat Enterprise Linux (RHEL), CentOS and Scientific Linux (SL), Oracle Linux (OL).

EPEL packages are usually based on their Fedora counterparts and will never conflict with or replace packages in the base Enterprise Linux distributions. EPEL uses much of the same infrastructure as Fedora, including a build system, Bugzilla instance, updates manager, mirror manager and more.

Updates

  • This week we have 6442 (+127)  packages, from 2882 (+76) source packages
  • Containerd and puppet retired from EPEL7 because of upstream EOL and multiple CVEs.
  • Caddy was updated, fixing 4 CVEs in EPEL9

Kindest regards,
CPE Team